πŸ•΅οΈ
HowToHunt
  • HowToHunt.md
  • API Testing
    • Hidden API Functionality Exposure
    • Reverse Engineer an API
  • Account Takeover Methodology
    • Account Takeover Methodology
  • Application Level DoS
    • Application Level DoS Methods
  • Authentication Bypass
    • 2FA Bypasses
    • OTP Bypass
    • Account Ban Bypass
  • Broken-Link Hijacking
    • Broken-Link Hijacking
  • Broken Auth And Session Management
    • Session Based Bugs
  • CMS
    • AEM
    • Drupal
    • Wordpress
    • Moodle
  • CORS
    • CORS
    • CORS Bypasses
  • CSRF
    • CSRF
    • CSRF MindMap
    • CSRF Bypass
  • Finding CVEs
    • CVES
  • CheckList
    • Web Application Pentesting Checklist
    • Web Checklist by Chintan Gurjar.pdf
    • Web Checklist by Tushra Verma.pdf
    • Mindmap by Rohit Gautam
    • Mindmap by Cristian Cornea
  • Web Page Source Code Review
    • Web Page Code Review Tips
  • EXIF Geo Data Not Stripped
    • EXIF Geo Data Not Stripped
  • File Upload Bypass
    • File Upload Bypass
  • Find Origin IP
    • Find Origin
  • GraphQL
    • GraphQL
  • HTTP Desync Attack
    • HTTP_Desync
  • Host-Header Attack
    • Host-Header
  • HTML-Injection
    • HTML-Injection
  • IDOR
    • IDOR
  • JWT ATTACK
    • JWT
  • JIRA ATTACK
    • JIRA
  • MFA Bypass
    • MFA Bypasses
    • 2FA-Bypass
  • Misconfigurations
    • Default Credential And Admin Panel
    • Docker
    • S3 Bucket
  • OAuth
    • OAuth
    • OAuth Hunting
  • Open Redirection
    • Find OpenRedirect Trick
    • Open Redirection Bypass
  • Parameter Pollution
    • Parameter Pollution In Social Sharing Buttons
  • Password Reset Functionality
    • MindMap
    • Password Reset Token Leakage
    • Account_Takeover_By_Password_Reset_Functionality
    • Password_Reset_Flaws
  • Rate Limit
    • Rate Limit Flaws
    • Rate-Limit Bypass
    • No Rate-Limit on Verify-PhoneNo
    • No Rate-limit on Invite User
    • No Rate-limit on Promo
    • No Rate-limit on Verify-email
    • No Rate-limit on forget-password
  • Race Condition
    • Race Condition
  • Recon
    • Github
    • Recon Workflow
    • Subdomain Enumeration
  • SQLi
    • SQL Injection.md
  • SAML
    • SAML
  • SSRF
    • SSRF
    • Blind SSRF
  • SSTI
    • SSTI
  • Sign Up Functionality
    • Sign Up Bugs
    • Sign Up MindMap
  • Sensitive Info Leaks
    • Github Recon Method
    • Github-Dorks
    • Github Dorks All
    • Google Dorks
    • Shodan CVE Dorks
    • Version Leaks
  • Status Code Bypass
    • Status_Code_Bypass Tips
    • 403 Bypass
  • Subdomain Takeover
    • Subdomain Takeover - Detail Method
    • Subdomain Takeover - Easy Method
    • Subs or Top level Domain
  • Tabnabbing
    • Tabnabbing
  • WAF Bypasses
    • WAF Bypass Using Headers
  • Weak Password Policy
    • Weak Password Policy
  • XSS
    • XSS
    • Bypass CSP
    • XSS Bypass
    • Automated XSS
    • Post Message Xss
  • XXE
    • XXE Methods
    • Billion Laugh Attack
Powered by GitBook
On this page
  1. Sensitive Info Leaks

Github-Dorks

PreviousGithub Recon MethodNextGithub Dorks All

Last updated 4 years ago

GitHub Dork List :

GitHub Dorks for Finding Files

  • filename:manifest.xml

  • filename:travis.yml

  • filename:vim_settings.xml

  • filename:database

  • filename:prod.exs NOT prod.secret.exs

  • filename:prod.secret.exs

  • filename:.npmrc _auth

  • filename:.dockercfg auth

  • filename:WebServers.xml

  • filename:.bash_history

  • filename:sftp-config.json

  • filename:sftp.json path:.vscode

  • filename:secrets.yml password

  • filename:.esmtprc password

  • filename:passwd path:etc

  • filename:dbeaver-data-sources.xml

  • path:sites databases password

  • filename:config.php dbpasswd

  • filename:prod.secret.exs

  • filename:configuration.php JConfig password

  • filename:.sh_history

  • shodan_api_key language:python

  • filename:shadow path:etc

  • JEKYLL_GITHUB_TOKEN

  • filename:proftpdpasswd

  • filename:.pgpass

  • filename:idea14.key

  • filename:hub oauth_token

  • HEROKU_API_KEY language:json

  • HEROKU_API_KEY language:shell

  • SF_USERNAME salesforce

  • filename:.bash_profile aws

  • extension:json

  • filename:.env MAIL_HOST=

  • filename:wp-config.php

  • extension:sql mysql dump

  • filename:credentials aws_access_key_id

  • filename:id_rsa or filename:id_dsa

GitHub Dorks for Finding Languages

  • language:python username

  • language:php username

  • language:sql username

  • language:html password

  • language:perl password

  • language:shell username

  • language:java api

  • HOMEBREW_GITHUB_API_TOKEN language:shell

GiHub Dorks for Finding API Keys, Tokens and Passwords

  • api_key

  • β€œapi keys”

  • authorization_bearer:

  • oauth

  • auth

  • authentication

  • client_secret

  • api_token:

  • β€œapi token”

  • client_id

  • password

  • user_password

  • user_pass

  • passcode

  • client_secret

  • secret

  • password hash

  • OTP

  • user auth

GitHub Dorks for Finding Usernames

  • user:name (user:admin)

  • org:name (org:google type:users)

  • in:login ( in:login)

  • in:name ( in:name)

  • fullname:firstname lastname (fullname: )

  • in:email (data in:email)

  • GitHub Dorks for Finding Information using Dates

  • created:<2012–04–05

  • created:>=2011–06–12

  • created:2016–02–07 location:iceland

  • created:2011–04–06..2013–01–14 in:username

GitHub Dorks for Finding Information using Extension

  • extension:pem private

  • extension:ppk private

  • extension:sql mysql dump

  • extension:sql mysql dump password

  • [WFClient] Password= extension:ica

  • extension:json googleusercontent client_secret

extension:json [api.forecast.io] ()

extension:json [mongolab.com] ()

extension:yaml [mongolab.com] ()

extension:avastlic β€œ[support.avast.com] (

api.forecast.io
smtp.gmail.com
http://api.forecast.io/
http://mongolab.com/
http://mongolab.com/
http://support.avast.com/)”